Stewart Stremler wrote:
SSH protects against this by keeping a list of known hosts and their keys. When you first connect to a server, it'll tell you the key fingerprint of that server and ask if you want to trust that machine. What you're _supposed_ to do is have obtained the fingerprint via another channel beforehand, and now you compare the two and make sure that they're the same.
How do I get it right from the host machine when I'm sitting at it's keyboard?
-- [email protected] http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
